PT-2025-9531 · Unknown · Sell Done Storefront

Xibhi

Published

2025-03-03

Updated

2025-03-28

CVE-2025-26206

CVSS v3.1

9.0

Critical

Vector

AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions sell done storefront version 1.0

Description The issue allows a remote attacker to escalate privileges. This is achieved via the index.html component.

Recommendations For version 1.0, update to a version that includes a fix for this issue, as no specific workaround is provided in the available data.

Exploit

Fix

CSRF

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-352

Related Identifiers

CVE-2025-26206

Affected Products

Sell Done Storefront

PT-2025-9531 · Unknown · Sell Done Storefront

CVE-2025-26206

Weakness Enumeration

Related Identifiers

Affected Products

References · 8